*For this entry exists the more relevant or more recent entry MC1200576
check before: 2025-09-01
Product:
Defender, Defender for Office 365, Defender XDR, Entra, Microsoft 365 admin center, Microsoft 365 Apps, Teams, Windows
Platform:
Android, iOS, Mac, Online, Web, Windows Desktop, World tenant
Status:
Launched
Change type:
Admin impact, New feature, Updated message, User impact
Details:
Summary:
Microsoft Teams will enable users to report messages incorrectly flagged as security threats, available by end of November 2025 worldwide. The feature requires Microsoft Defender for Office 365 Plan 2 or Defender XDR and must be enabled in both Teams admin center and Microsoft Defender portal.
Details:
Updated November 17, 2025: The rollout of "Report incorrect security detection in Microsoft teams is expected to finish by the end of November 2025 for General Availability (Worldwide). The previously announced update to make "Report incorrect security detections" settings in Messaging settings in Teams admin center On by default has been postponed to early 2026. A separate communication will be issued detailing the roll out schedule for the default-on change in advance.
Thank you for your patience.
Introduction
Microsoft Teams now enables users to report messages they believe were incorrectly flagged as security threats in chats and channels. This capability is available to organizations with Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR. It empowers users to provide feedback on false positives, helping improve detection accuracy and strengthen organizational security.
This feature will be available across Microsoft Teams on Android, Desktop (Windows), iOS, Mac, and Web platforms, ensuring broad accessibility for users regardless of device.
This feature is associated with Microsoft 365 Roadmap ID 501202.
When this will happen
Targeted Release (Worldwide): Begins in early September 2025; expected completion by mid-September 2025.
General Availability (Worldwide): Begins in early November 2025; expected completion by end of November 2025 (previously mid-November).
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Targeted Release
Created:
2025-09-05
updated:
2025-11-18
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
linked item details
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Please, look at the most relevant linked item for details
explanation for non-techies**
Microsoft Teams is introducing a new feature that allows users to report messages they think were wrongly marked as security threats. Think of it like a spam filter in your email that sometimes mistakenly sends important emails to the junk folder. Just as you can mark those emails as "not spam" to help your email provider improve its filtering, this new feature lets you flag messages in Teams that you believe are safe, even if they were flagged as threats.
This feature is available to organizations using specific security plans like Microsoft Defender for Office 365 Plan 2 or Defender XDR. It's a bit like having a premium security system that offers more advanced features. To use this new reporting feature, it needs to be turned on in both the Teams admin center and the Microsoft Defender portal. Imagine it as needing to flip two switches to get the full benefits of a new security system in your office.
The feature will be accessible on various devices, including Android, iOS, Windows, Mac, and the web, so users can report issues no matter what device they're using. This is similar to being able to access your email from your phone, tablet, or computer.
When a user reports a message, that information is stored in the Microsoft Defender portal. This is like having a record of all the times you’ve marked emails as "not spam," which helps improve the system over time. The feedback from users helps refine the system's ability to correctly identify threats, making it smarter and more accurate.
Admins have control over this feature and can manage who has access to it through group memberships, similar to how HR might manage who has access to certain files or systems within a company. This ensures that only the right people can make changes to these settings.
Overall, this new feature in Microsoft Teams aims to improve security by allowing users to help fine-tune what is considered a threat, much like training a security team to better recognize what is and isn't a risk.
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2025-11-18 | MC Messages | Updated September 9, 2025: We have updated the content. Thank you for your patience.
Introduction Microsoft Teams now enables users to report messages they believe were incorrectly flagged as security threats in chats and channels. This capability is available to organizations with Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR. It empowers users to provide feedback on false positives, helping improve detection accuracy and strengthen organizational security. This feature will be available across Microsoft Teams on Android, Desktop (Windows), iOS, Mac, and Web platforms, ensuring broad accessibility for users regardless of device. This feature is associated with Microsoft 365 Roadmap ID 501202. When this will happen Targeted Release (Worldwide): Begins in early September 2025; expected completion by mid-September 2025. General Availability (Worldwide): Begins in early November 2025; expected completion by mid-November 2025. | Updated November 17, 2025: The rollout of "Report incorrect security detection in Microsoft teams is expected to finish by the end of November 2025 for General Availability (Worldwide). The previously announced update to make "Report incorrect security detections" settings in Messaging settings in Teams admin center On by default has been postponed to early 2026. A separate communication will be issued detailing the roll out schedule for the default-on change in advance.
Thank you for your patience. Introduction Microsoft Teams now enables users to report messages they believe were incorrectly flagged as security threats in chats and channels. This capability is available to organizations with Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR. It empowers users to provide feedback on false positives, helping improve detection accuracy and strengthen organizational security. This feature will be available across Microsoft Teams on Android, Desktop (Windows), iOS, Mac, and Web platforms, ensuring broad accessibility for users regardless of device. This feature is associated with Microsoft 365 Roadmap ID 501202. When this will happen Targeted Release (Worldwide): Begins in early September 2025; expected completion by mid-September 2025. General Availability (Worldwide): Begins in early November 2025; expected completion by end of November 2025 (previously mid-November). |
| 2025-11-18 | MC Last Updated | 09/09/2025 19:02:57 | 2025-11-17T18:04:04Z |
| 2025-11-18 | MC Summary | Microsoft Teams will let users report messages incorrectly flagged as security threats, available with Microsoft Defender for Office 365 Plan 2 or Defender XDR. The feature launches in September 2025 (Targeted Release) and November 2025 (General Availability), requiring admin enablement in Teams and Defender portals. | Microsoft Teams will enable users to report messages incorrectly flagged as security threats, available by end of November 2025 worldwide. The feature requires Microsoft Defender for Office 365 Plan 2 or Defender XDR and must be enabled in both Teams admin center and Microsoft Defender portal. |
| 2025-09-10 | MC Feature Status | Feature Rollout Status Not Supported | |
| 2025-09-10 | MC MessageTagNames | New feature, User impact, Admin impact | Updated message, New feature, User impact, Admin impact |
| 2025-09-10 | MC Summary | Microsoft Teams will let users report messages incorrectly flagged as security threats, available to organizations with Microsoft Defender for Office 365 Plan 2 or Defender XDR. The feature launches in September 2025 (Targeted Release) and November 2025 (General Availability), requiring admin enablement in Teams and Defender portals. | Microsoft Teams will let users report messages incorrectly flagged as security threats, available with Microsoft Defender for Office 365 Plan 2 or Defender XDR. The feature launches in September 2025 (Targeted Release) and November 2025 (General Availability), requiring admin enablement in Teams and Defender portals. |
| 2025-09-10 | MC Last Updated | 09/05/2025 01:12:58 | 2025-09-09T19:02:57Z |
| 2025-09-10 | MC Messages | Introduction
Microsoft Teams now enables users to report messages they believe were incorrectly flagged as security threats in chats and channels. This capability is available to organizations with Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR. It empowers users to provide feedback on false positives, helping improve detection accuracy and strengthen organizational security. This feature will be available across Microsoft Teams on Android, Desktop (Windows), iOS, Mac, and Web platforms, ensuring broad accessibility for users regardless of device. This feature is associated with Microsoft 365 Roadmap ID 501202. When this will happen Targeted Release (Worldwide): Begins in early September 2025; expected completion by mid-September 2025. General Availability (Worldwide): Begins in early November 2025; expected completion by mid-November 2025. | Updated September 9, 2025: We have updated the content. Thank you for your patience.
Introduction Microsoft Teams now enables users to report messages they believe were incorrectly flagged as security threats in chats and channels. This capability is available to organizations with Microsoft Defender for Office 365 Plan 2 or Microsoft Defender XDR. It empowers users to provide feedback on false positives, helping improve detection accuracy and strengthen organizational security. This feature will be available across Microsoft Teams on Android, Desktop (Windows), iOS, Mac, and Web platforms, ensuring broad accessibility for users regardless of device. This feature is associated with Microsoft 365 Roadmap ID 501202. When this will happen Targeted Release (Worldwide): Begins in early September 2025; expected completion by mid-September 2025. General Availability (Worldwide): Begins in early November 2025; expected completion by mid-November 2025. |
| 2025-09-10 | MC prepare | https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=501202 | https://learn.microsoft.com/microsoftteams/end-user-reporting-security
https://www.microsoft.com/microsoft-365/roadmap?filters=&searchterms=501202 |
| 2025-09-10 | MC How Affect | Users will be able to report messages they believe contain URLs that were incorrectly flagged as malicious:
During Targeted Release, the feature is off by default in Teams. At General Availability, the feature will be on by default in Teams. Admin settings saved during Targeted Release will remain unchanged. In the Microsoft Defender portal, the setting is on by default for new tenants. Existing tenants must enable it manually. What you can do to prepare To enable this feature and ensure reported messages appear in the User reported tab in Submissions: In the Teams admin center, go to Messaging settings > Messaging safety and turn on Report incorrect security detections. In the Microsoft Defender portal, ensure the corresponding setting is enabled. Both settings must be turned on for full functionality. Learn more: [Updated documentation to be made available on Microsoft Learn in the second week of September 2025.] Compliance considerations Does the change store new customer data, and if so, where is it stored?Yes. When users report messages they believe were incorrectly flagged, those submissions are stored in the Microsoft Defender portal under the Submissions tab. Does the change introduce or significantly modify AI/ML or agent capabilities that interact with or provide access to customer data?Yes. User feedback on incorrectly flagged messages is used to improve detection models, which modifies how AI/ML systems classify threats over time. Does the change include an admin control, and can it be controlled through Entra ID group membership?Yes. Admins can enable or disable the feature in both the Teams admin center and the Microsoft Defender portal. Access to these controls can be managed through Entra ID group membership. | Users will be able to report messages they believe contain URLs that were incorrectly flagged as malicious:
During Targeted Release, the feature is off by default in Teams. At General Availability, the feature will be on by default in Teams. Admin settings saved during Targeted Release will remain unchanged. In the Microsoft Defender portal, the setting is on by default for new tenants. Existing tenants must enable it manually. What you can do to prepare To enable this feature and ensure reported messages appear in the User reported tab in Submissions: In the Teams admin center, go to Messaging settings > Messaging safety and turn on Report incorrect security detections. In the Microsoft Defender portal, ensure the corresponding setting is enabled. Both settings must be turned on for full functionality. Learn more: [Updated documentation to be made available on Microsoft Learn in the second week of September 2025.] Compliance considerations Does the change store new customer data, and if so, where is it stored?Yes. When users report messages they believe were incorrectly flagged, those submissions are stored in the Microsoft Defender portal under the Submissions tab. Does the change introduce or significantly modify AI/ML or agent capabilities that interact with or provide access to customer data?Yes. User feedback on incorrectly flagged messages is used to improve detection models, which modifies how AI/ML systems classify threats over time. Does the change include an admin control, and can it be controlled through Entra ID group membership?Yes. Admins can enable or disable the feature in both the Teams admin center and the Microsoft Defender portal. Access to these controls can be managed through Entra ID group membership. Additional Resources: End user reporting for security - Microsoft Teams | Microsoft Learn |
| 2025-09-10 | MC Title | Microsoft Teams: User reporting for incorrectly identified security concerns | (Updated) Microsoft Teams: User reporting for incorrectly identified security concerns |
| 2025-09-10 | MC End Time | 12/15/2025 09:00:00 | 2025-12-29T09:00:00Z |
Last updated 4 days ago ago
